I checked it today and it is still there for me :-(
I checked the code and found that php5-curl in ext/curl/interface.c line 819 calls curl_global_init(CURL_GLOBAL_SSL). If I changed it to CURL_GLOBAL_NOTHING the apache didn't crash. So I followed this code through the libcurl to the openssl library and found out that if remove the initialisation of ENGINE_load_aesni (see debian/patches/aesni.patch line 2429) the php5 curl won't load https pages but the Apache won't segfault.
I have openssl, libssl0.9.8 and libssl-dev version 0.9.8k-7ubuntu8.
I checked it today and it is still there for me :-(
I checked the code and found that php5-curl in ext/curl/ interface. c line 819 calls curl_global_ init(CURL_ GLOBAL_ SSL). If I changed it to CURL_GLOBAL_NOTHING the apache didn't crash. So I followed this code through the libcurl to the openssl library and found out that if remove the initialisation of ENGINE_load_aesni (see debian/ patches/ aesni.patch line 2429) the php5 curl won't load https pages but the Apache won't segfault.
I have openssl, libssl0.9.8 and libssl-dev version 0.9.8k-7ubuntu8.